NA
CVSSv3

CVE-2010-0556

CVSSv4: NA | CVSSv3: NA | CVSSv2: 4.3 | VMScore: 530 | EPSS: 0.00423 | KEV: Not Included
Published: 18/02/2010 Updated: 21/11/2024

Vulnerability Summary

browser/login/login_prompt.cc in Google Chrome prior to 4.0.249.89 populates an authentication dialog with credentials that were stored by Password Manager for a different web site, which allows user-assisted remote HTTP servers to obtain sensitive information via a URL that requires authentication, as demonstrated by a URL in the SRC attribute of an IMG element.

Vulnerable Product Search on Vulmon Subscribe to Product

google chrome

google chrome 0.2.149.27

google chrome 0.2.149.29

google chrome 0.2.149.30

google chrome 0.2.152.1

google chrome 0.2.153.1

google chrome 0.3.154.0

google chrome 0.3.154.3

google chrome 0.4.154.18

google chrome 0.4.154.22

google chrome 0.4.154.31

google chrome 0.4.154.33

google chrome 1.0.154.36

google chrome 1.0.154.39

google chrome 1.0.154.42

google chrome 1.0.154.43

google chrome 1.0.154.46

google chrome 1.0.154.48

google chrome 1.0.154.52

google chrome 1.0.154.53

google chrome 1.0.154.59

google chrome 1.0.154.65

google chrome 2.0.156.1

google chrome 2.0.157.0

google chrome 2.0.157.2

google chrome 2.0.158.0

google chrome 2.0.159.0

google chrome 2.0.169.0

google chrome 2.0.169.1

google chrome 2.0.170.0

google chrome 2.0.172

google chrome 2.0.172.2

google chrome 2.0.172.8

google chrome 2.0.172.27

google chrome 2.0.172.28

google chrome 2.0.172.30

google chrome 2.0.172.31

google chrome 2.0.172.33

google chrome 2.0.172.37

google chrome 2.0.172.38

google chrome 3.0.182.2

google chrome 3.0.190.2

google chrome 3.0.193.2

google chrome 3.0.195.21

google chrome 3.0.195.24

google chrome 3.0.195.32

google chrome 3.0.195.33